Industry coalitions urge CISA to align secure by design principles with NIST software framework

The Cybersecurity and Infrastructure Security Agency should more explicitly align its secure by design principles with the NIST Secure Software Development Framework to increase adoption, according to filings submitted by two groups housed at Venable’s Center for Cybersecurity Policy and Law.

The Cybersecurity Coalition and the Coalition to Reduce Cyber Risk (CR2) “point to NIST’s SSDF as a framework that is rooted in international standards and received in-depth feedback and widespread adoption, and recommend CISA use the SSDF as the...